XF 1.5 How do I force SSL to login/register forms only?

Marks534

Member
So I'm looking to implement SSL into my site but as most of you know, a drop in adsense revenue is possible. So the only benefit I'd like to get out of SSL is the security.

I'm basically looking to force all my login and registration forms over SSL. I've seen other forums do it so it's definitely possible. They basically iframed a seperate login/register form into their web pages. Usually something like 'https://auth.forum.com'.

Could I get some more explanation on what the best way would be to approach this?
 
a drop in adsense revenue is possible
Not any more, that's really old information/experience.

I'm basically looking to force all my login and registration forms over SSL. I've seen other forums do it so it's definitely possible
Possible, but provides no value or any real extra security.

Could I get some more explanation on what the best way would be to approach this?
Just make your whole site SSL/HTTPS.
 
Theres little point having ssl on ONLY the login, because the session data browsing the forum is constantly transmitted back and forth.

Also need to encrypt all pages not to trigger Google chrome insecurity warnings.

Guess what that means? SEO will require the site to be HTTPS (and as the site moves to http2, it will speed up your site too). Think of it like this, Google delivers the -best- results for search every time.

They server your unencrypted page that may show an "Insecure site warning" most people will click back straight away. Google monitors these actions and your site will be penalized for massive bounce rates/low engagement time due to users not understanding.

Pierce
 
Top Bottom